Skip to content
We Handle Tech // Cyber
The stack

One bundle. Eight layers. No gaps.

The WHT Cyber stack covers every layer attackers actually use — endpoint, identity, posture, detection, response, training, and recovery — all monitored 24/7 by our AI-assisted SOC. One flat price. One throat to choke.

SOC status: operational · Median triage: 8 min · Coverage: United States
24/7 AI-assisted SOC
coverage
8 min Median triage
response time
<1% False-positive
rate on alerts
7 yr SIEM retention
for compliance
What's inside

The eight services that make up the stack.

Each layer is a real product running on enterprise-grade tech — built, tuned, and watched by us. You don't buy any of these à la carte. You buy the bundle.

01

WHT EndpointOps

RMM · Patching · Inventory

The foundation. Every endpoint — Windows, macOS, Linux — managed, monitored, and patched from one console. You can't defend what you can't see.

  • Automated OS patching across Windows, macOS, Linux
  • Third-party app patching for 6,000+ business apps
  • Real-time alerting on CPU, memory, services, and processes
  • Silent remote remediation — no end-user interruption
  • Full hardware and software inventory, always current
02

WHT Endpoint Hardening

ESPM · Posture · App control

Close the doors before anyone tries to walk through them. Continuous, automated audit of every endpoint's configuration, with managed remediation.

  • Continuous config audit: firewalls, encryption, AV state
  • Application control — block risky tools, allow what you trust
  • Missing patch and CVE visibility, prioritized by risk
  • Detects disabled security agents and configuration drift
  • Audit-ready posture reports for HIPAA, PCI, CMMC, NIST
03

WHT Sentinel MDR

Managed EDR · 24/7 SOC · Response

Enterprise-grade endpoint detection and response, watched around the clock by our human-led, AI-assisted SOC. When something hits, we contain it — you don't get a ticket, you get a phone call.

  • Behavioral detection — catches what signatures miss
  • Real-time attack disruption and lateral-movement detection
  • Ransomware canaries for the earliest possible warning
  • Pre-approved containment actions — isolation in seconds
  • Root-cause analysis and after-action reports on every incident
  • Industry-leading 8-minute median MTTR
04

WHT SIEM + AI-SOC

Log mgmt · Threat hunting · Compliance

Compliance and threat response backed by our 24/7 AI-assisted SOC — no chaos, big budget, or headaches that come with traditional SIEMs. The WHT human-led SOC has an eye on your environment and logs 24/7 to detect, investigate, and hunt.

  • Smart-filtered log ingestion — signal, not noise
  • Logs from endpoints, firewalls, VPN, identity, password mgmt
  • Up to 7 years of retention for the toughest audits
  • 24/7 human-led hunting for known TTPs and tradecraft
  • Detailed incident reports — we remediate confirmed threats
  • Flat predictable pricing — no per-GB billing surprises
05

WHT Identity Guard

ITDR · M365 · Google Workspace

Identity is the new endpoint. We detect account takeovers, session hijacks, rogue OAuth apps, and business email compromise — and shut them down.

  • 24/7 identity threat detection across M365 and Google Workspace
  • Session-token theft detection — even when MFA is bypassed
  • Unauthorized login and impossible-travel alerts
  • Rogue OAuth app discovery and revocation
  • 3-minute MTTR on confirmed identity threats
06

WHT Identity Posture

ISPM · M365 hardening

Most hackers don't break in — they walk in through messy settings and over-privileged accounts. We audit and enforce M365 configurations so those doors stay shut.

  • Continuous audit of M365 configs, policies, permissions
  • MFA enforcement and conditional access review
  • Legacy auth, stale account, and shared-mailbox cleanup
  • Privilege creep detection across users and apps
  • Identity hardening guided by experts, not guesswork
07

WHT Human Firewall

Security awareness · Phishing sims

Your people are your last line of defense. Short, story-driven training and real-world phishing simulations — managed for you, end to end.

  • Engaging, episode-based training — not corporate slop
  • Phishing simulations based on current real-world threats
  • Auto-enrollment via M365, Google Workspace, Okta, SCIM
  • Just-in-time Phishing Defense Coaching for clicks in the wild
  • Audit-ready compliance reports for HIPAA, PCI, SOC 2
08

WHT Continuity

Managed backups · Recovery

When everything else fails, recovery is the last word. Managed backups for endpoints, servers, and M365 — tested, monitored, and restorable.

  • Endpoint and server backups with immutable copies
  • M365 backup — mailbox, OneDrive, SharePoint, Teams
  • Ransomware-resistant storage, isolated from production
  • Quarterly restore tests — backups you can prove work
  • RTO/RPO targets matched to your business requirements

The complete WHT Cyber bundle.

Everything above, one flat per-endpoint rate, billed month-to-month. From 1 user to 5,000+. No setup fees. No tier traps. No surprises.

  • All eight services included by default
  • 24/7 AI-assisted SOC monitoring
  • Month-to-month — cancel any month
  • Onboarded in 14 days or less
$120 per endpoint / month
Get a line-item quote →

A real engineer responds within one business day.

Compliance support

Built to satisfy your auditor.

The stack maps cleanly to the frameworks most clients face. We bring the evidence; you bring the auditor.

  • HIPAA
  • PCI DSS
  • CMMC 2.0
  • NIST CSF
  • SOC 2
  • CIS Controls

Let's price your environment.

Tell us how many endpoints, what your auditor cares about, and what your last scare looked like. We'll send a line-item quote within two business days.

Get a line-item quote Or call (704) 288-4200